Key Takeaways
- Cov neeg tawm tsam tsis ntev los no tau tswj hwm los teeb tsa daim npav digital skimmers ntawm ntau dua 500 lub vev xaib.
- Txoj haujlwm rau kev tiv thaiv yog nrog tus tswv lub vev xaib.
-
Cov kws paub txog kev nyab xeeb qhia ntau yam txhais tau tias cov neeg siv tuaj yeem ua haujlwm los tiv thaiv lawv tus kheej.
Tsis txhob cuam tshuam rau tus kheej cov nyiaj, hackers tau hloov tack thiab tam sim no mus tom qab niam lode, txhim kho daim npav skimmers ntawm cov khw muag khoom online.
Lub Ob Hlis 8, 2022, cov kws tshawb fawb txog kev ruaj ntseg tau qhia cov ntsiab lus hais txog kev ua txhaum cai loj rau ntau tshaj 500 lub khw hauv online uas khiav Magento ecommerce platform. Cov neeg tawm tsam tau thauj daim npav them nyiaj skimmer ntawm txhua lub khw muag khoom, hauv qhov hu ua magecart nres. Txawm hais tias qhov kho tau nyob nrog cov khw muag khoom online, lub hom phiaj yog cov neeg siv kawg uas cov kws tshaj lij ntseeg tias yuav tsum tau ceev faj ntxiv thaum ua lag luam online.
"[Qhov no] kev tawm tsam tsis ntev los no yuav tsum ceeb toom rau txhua tus neeg saib xyuas online [uas] lawv muaj lub luag haujlwm los tiv thaiv lawv tus kheej ntxiv rau qhov koj xav tau los ntawm koj lub khw muag khoom online, "Ron Bradley, VP ntawm Kev Ntsuam Xyuas Sib Koom, hais rau Lifewire hla email.
Digital Skimming
Gustavo Palazolo, Cov Neeg Ua Haujlwm Kev Tshawb Fawb Kev Nyuaj Siab ntawm Netskope, hais rau Lifewire dhau email tias Magento yog ib qho ntawm cov lag luam e-lag luam nrov uas tau tsom los ntawm cov neeg tawm tsam vim ntau lub khw muag khoom dhau los ntawm cov software, thaum lwm tus siv cov plugins thib peb uas Qee lub sij hawm muaj qhov tsis raug kev ruaj ntseg uas tsis muaj kev tiv thaiv uas tso cai rau cov neeg tawm tsam los cog cov skimmers.
Nws hais tias thaum nws tsis yooj yim los txheeb xyuas yog tias lub vev xaib koj tab tom yuav khoom yog lub hom phiaj ntawm kev sib tw magecart, muaj qee qhov kev ntsuas cov neeg siv tuaj yeem ua raws los txhawb lawv txoj kev nyab xeeb hauv online.
Palazolo pom zoo siv qhov browser txuas ntxiv los thaiv cov ntawv tsis paub, xws li NoScript rau Firefox. Nws kuj tau tawm tswv yim siv cov tshuaj tiv thaiv kab mob uas muab cov browser txuas ntxiv vim tias lawv tuaj yeem luam theej duab lub vev xaib thiab thaiv cov ntawv tsis zoo.
Nws hais ntxiv tias Adobe tsis txhawb Magento v1 lawm, tab sis vim nws muaj koob meej, muaj ntau lub zej zog muab kev ruaj ntseg thaj ua rau pab kom ruaj ntseg version no. Txawm li cas los xij, nws qhia cov neeg siv kom tsis txhob ua lag luam hauv cov vev xaib uas siv los ntawm lub platform tsis txhawb nqa.
txhawm rau txheeb xyuas yog tias lub vev xaib koj tab tom yuav khoom siv qhov tseeb Magento v2, Palazolo taw qhia rau Wappalyzer rau Chrome thiab Firefox, uas tuaj yeem ntes cov thev naus laus zis hauv qab nplooj ntawv web.
"Yog tias txhim kho qhov browser txuas ntxiv tsis yog ib qho kev xaiv, cov cuab yeej hauv online tuaj yeem yog qhov kev xaiv zoo los txheeb xyuas cov ntsiab lus ntawm Magento, xws li MageReport, uas tuaj yeem qhia koj tsis tsuas yog version tab sis kuj tseem muaj cov ntaub ntawv hais txog kev ruaj ntseg tsis zoo nyob hauv lub vev xaib koj tab tom yuav mus yuav khoom, "Palazolo qhia.
Ua Koj Tus Kheej Firewall
Bradley tau hais tias cov neeg yuav khoom hauv online tsis tas yuav yog cov kws tshaj lij cybersecurity los tiv thaiv lawv tus kheej tab sis yuav tsum muaj kev tiv thaiv kev xav tob kom tsis txhob ua neeg raug tsim txom.
"Cybersecurity yog zoo li cov dos [sau] ntawm ntau txheej. Nws yog ib qho tseem ceeb los txheeb xyuas koj thaj tsam thiab siv kev ntsuas kev nyab xeeb los tiv thaiv koj tus kheej," Bradley hais. "Pib nrog koj lub txhab nyiaj lossis credit card issuer. Qhib txhua qhov kev ceeb toom koj tuaj yeem ua tau, mus txog qhov uas nws cuam tshuam, thiab koj yuav tsum rov qab mus thiab hu rau nws."
Nws tseem qhia kom tig rau ntau qhov kev lees paub qhov tseeb txhua qhov chaw uas ua tau thiab tawm tswv yim tawm tsam kev siv daim npav rho nyiaj thaum siv qhov zoo ntawm qhov chaw qiv nyiaj, uas tsis raug nqi dab tsi, thiab pab tiv thaiv cov neeg siv khoom los ntawm kev nyiag tus kheej.
Palazolo tau hais tias cov neeg siv yuav tsum siv lub peev xwm los tsim cov lej cim thiab ib ntus digital daim npav rau kev yuav khoom online. Txawm hais tias lub vev xaib raug mob, qhov kev xaiv no yuav ua kom ntseeg tau tias cov ntaub ntawv raug nyiag lawm tsis muaj kev siv rau cov neeg tawm tsam.
Qhov muag dav qhib
Erich Kron, tus kws tshaj lij kev paub txog kev nyab xeeb ntawm KnowBe4, tau hais kom cov neeg yuav khoom tshuaj xyuas lawv daim npav rho nyiaj thiab cov ntawv teev nyiaj hauv tuam txhab tsis tu ncua, ua kom lawv lub qhov muag tsis zoo rau cov nqi txawv lossis kev yuav khoom.
"Ntau dhau lawm, cov nqi tsuas yog ntxiv rau qhov nyiaj tshuav ntawm daim npav rho nyiaj yam tsis muaj tus neeg raug tsim txom pom. siv tau, tuaj yeem yog qhov kos npe tias daim npav tau raug cuam tshuam, " Kron qhia nrog Lifewire ntawm email.
"Nws yog ib qho tseem ceeb los txheeb xyuas koj thaj tsam thiab ua raws li kev ntsuas kev nyab xeeb los tiv thaiv koj tus kheej."
Nws kuj tau hais tias cov neeg siv yuav tsum nkag siab txog kev tiv thaiv los ntawm lawv daim npav rho nyiaj thiab paub txog txhua yam kev xaiv muaj rau lawv kom ceev nrooj tshaj tawm cov nqi tsis txaus ntseeg.
Txawm li cas los xij, thaum kawg ntawm hnub, nws yog lub luag haujlwm ntawm cov tswv lag luam e-lag luam lub vev xaib kom ntseeg tau tias lawv tau khiav lub nkoj ruaj ntseg, taw qhia Kunal Modasiya, tus thawj coj loj ntawm kev tswj cov khoom lag luam ntawm cybersecurity ruaj PerimeterX. Nws hais tias vim tias cov neeg siv khoom siv tau txwv, cov tswv lag luam e-lag luam yuav tsum ntiav cov kev daws teeb meem uas muab kev pom tsis tu ncua mus rau qhov kev ua tshwm sim hauv lawv lub vev xaib.
"cov tuam txhab lag luam lag luam yuav tsum ntiav cov txheej txheem tiv thaiv ntau qhov kev daws teeb meem uas pab tiv thaiv cov neeg siv cov nyiaj thiab cov ntaub ntawv tus kheej nyob txhua qhov chaw raws li lawv txoj kev mus rau digital."